US Public Data LabU.S. public data, made readable
Data areas
Federal Register Congress bills CISA KEV / NVD SEC EDGAR USAspending Defense contracts Trade Economy Energy Places FDA recalls AI Research Grants NIH research grants Fiscal & national debt
Tools
Search Recent Rankings Compare Money flows Timeline Compare indicators Topics
Profiles
Company profiles Agency profiles Glossary
EN
日本語 English
Browse all

Known Exploited Vulnerabilities (CISA KEV) — all

The full CISA KEV catalog of vulnerabilities confirmed exploited in the wild — filter and search by year, ransomware use, and date added.

Clear

1,621 results

UrgencyCVEName / productVendorKEV added
High CVE-2023-37450 ↗ Apple Multiple Products — Apple Multiple Products WebKit Code Execution Vulner... Apple Jul 13, 2023
High CVE-2022-29303 ↗ SolarView Compact — SolarView Compact Command Injection Vulnerability SolarView Jul 13, 2023
Critical CVE-2022-31199 ↗ Netwrix Auditor — Netwrix Auditor Insecure Object Deserialization Vulnerabilit... Netwrix Jul 11, 2023
High CVE-2023-36874 ↗ Microsoft Windows — Microsoft Windows Error Reporting Service Privilege Escala... Microsoft Jul 11, 2023
High CVE-2023-35311 ↗ Microsoft Outlook — Microsoft Outlook Security Feature Bypass Vulnerability Microsoft Jul 11, 2023
High CVE-2023-32049 ↗ Microsoft Windows — Microsoft Windows Defender SmartScreen Security Feature By... Microsoft Jul 11, 2023
High CVE-2023-32046 ↗ Microsoft Windows — Microsoft Windows MSHTML Platform Privilege Escalation Vul... Microsoft Jul 11, 2023
High CVE-2021-29256 ↗ Arm Mali Graphics Processing Unit (GPU) — Arm Mali GPU Kernel Driver Use-After... Arm Jul 7, 2023
High CVE-2021-25372 ↗ Samsung Mobile Devices — Samsung Mobile Devices Improper Boundary Check Vulner... Samsung Jun 29, 2023
High CVE-2021-25371 ↗ Samsung Mobile Devices — Samsung Mobile Devices Unspecified Vulnerability Samsung Jun 29, 2023
High CVE-2021-25395 ↗ Samsung Mobile Devices — Samsung Mobile Devices Race Condition Vulnerability Samsung Jun 29, 2023
High CVE-2021-25394 ↗ Samsung Mobile Devices — Samsung Mobile Devices Race Condition Vulnerability Samsung Jun 29, 2023
High CVE-2021-25489 ↗ Samsung Mobile Devices — Samsung Mobile Devices Improper Input Validation Vuln... Samsung Jun 29, 2023
High CVE-2021-25487 ↗ Samsung Mobile Devices — Samsung Mobile Devices Out-of-Bounds Read Vulnerabili... Samsung Jun 29, 2023
High CVE-2019-20500 ↗ D-Link DWL-2600AP Access Point — D-Link DWL-2600AP Access Point Command Inject... D-Link Jun 29, 2023
High CVE-2019-17621 ↗ D-Link DIR-859 Router — D-Link DIR-859 Router Command Execution Vulnerability D-Link Jun 29, 2023
High CVE-2023-27992 ↗ Zyxel Multiple Network-Attached Storage (NAS) Devices — Zyxel Multiple NAS Dev... Zyxel Jun 23, 2023
High CVE-2023-20867 ↗ VMware Tools — VMware Tools Authentication Bypass Vulnerability VMware Jun 23, 2023
High CVE-2023-32439 ↗ Apple Multiple Products — Apple Multiple Products WebKit Type Confusion Vulner... Apple Jun 23, 2023
High CVE-2023-32435 ↗ Apple Multiple Products — Apple Multiple Products WebKit Memory Corruption Vul... Apple Jun 23, 2023
High CVE-2023-32434 ↗ Apple Multiple Products — Apple Multiple Products Integer Overflow Vulnerabili... Apple Jun 23, 2023
High CVE-2016-0165 ↗ Microsoft Win32k — Microsoft Win32k Privilege Escalation Vulnerability Microsoft Jun 22, 2023
High CVE-2016-9079 ↗ Mozilla Firefox, Firefox ESR, and Thunderbird — Mozilla Firefox, Firefox ESR,... Mozilla Jun 22, 2023
High CVE-2021-44026 ↗ Roundcube Roundcube Webmail — Roundcube Webmail SQL Injection Vulnerability Roundcube Jun 22, 2023
High CVE-2020-12641 ↗ Roundcube Roundcube Webmail — Roundcube Webmail Remote Code Execution Vulnerab... Roundcube Jun 22, 2023
High CVE-2020-35730 ↗ Roundcube Roundcube Webmail — Roundcube Webmail Cross-Site Scripting (XSS) Vul... Roundcube Jun 22, 2023
High CVE-2023-20887 ↗ VMware Aria Operations for Networks — Vmware Aria Operations for Networks Comm... VMware Jun 22, 2023
Critical CVE-2023-27997 ↗ Fortinet FortiOS and FortiProxy SSL-VPN — Fortinet FortiOS and FortiProxy SSL-... Fortinet Jun 13, 2023
High CVE-2023-3079 ↗ Google Chromium V8 — Google Chromium V8 Type Confusion Vulnerability Google Jun 7, 2023
High CVE-2023-33010 ↗ Zyxel Multiple Firewalls — Zyxel Multiple Firewalls Buffer Overflow Vulnerabil... Zyxel Jun 5, 2023
High CVE-2023-33009 ↗ Zyxel Multiple Firewalls — Zyxel Multiple Firewalls Buffer Overflow Vulnerabil... Zyxel Jun 5, 2023
Critical CVE-2023-34362 ↗ Progress MOVEit Transfer — Progress MOVEit Transfer SQL Injection Vulnerabilit... Progress Jun 2, 2023
High CVE-2023-28771 ↗ Zyxel Multiple Firewalls — Zyxel Multiple Firewalls OS Command Injection Vulne... Zyxel May 31, 2023
High CVE-2023-2868 ↗ Barracuda Networks Email Security Gateway (ESG) Appliance — Barracuda Networks... Barracuda Networks May 26, 2023
High CVE-2023-32373 ↗ Apple Multiple Products — Apple Multiple Products WebKit Use-After-Free Vulner... Apple May 22, 2023
High CVE-2023-28204 ↗ Apple Multiple Products — Apple Multiple Products WebKit Out-of-Bounds Read Vu... Apple May 22, 2023
High CVE-2023-32409 ↗ Apple Multiple Products — Apple Multiple Products WebKit Sandbox Escape Vulner... Apple May 22, 2023
High CVE-2023-21492 ↗ Samsung Mobile Devices — Samsung Mobile Devices Insertion of Sensitive Informa... Samsung May 19, 2023
High CVE-2016-6415 ↗ Cisco IOS, IOS XR, and IOS XE — Cisco IOS, IOS XR, and IOS XE IKEv1 Informatio... Cisco May 19, 2023
High CVE-2004-1464 ↗ Cisco IOS — Cisco IOS Denial-of-Service Vulnerability Cisco May 19, 2023
High CVE-2016-8735 ↗ Apache Tomcat — Apache Tomcat Remote Code Execution Vulnerability Apache May 12, 2023
High CVE-2016-3427 ↗ Oracle Java SE and JRockit — Oracle Java SE and JRockit Unspecified Vulnerabil... Oracle May 12, 2023
High CVE-2015-5317 ↗ Jenkins Jenkins User Interface (UI) — Jenkins User Interface (UI) Information... Jenkins May 12, 2023
High CVE-2010-3904 ↗ Linux Kernel — Linux Kernel Improper Input Validation Vulnerability Linux May 12, 2023
High CVE-2014-0196 ↗ Linux Kernel — Linux Kernel Race Condition Vulnerability Linux May 12, 2023
High CVE-2021-3560 ↗ Red Hat Polkit — Red Hat Polkit Incorrect Authorization Vulnerability Red Hat May 12, 2023
High CVE-2023-25717 ↗ Ruckus Wireless Multiple Products — Multiple Ruckus Wireless Products CSRF and... Ruckus Wireless May 12, 2023
High CVE-2023-29336 ↗ Microsoft Win32k — Microsoft Win32K Privilege Escalation Vulnerability Microsoft May 9, 2023
High CVE-2023-21839 ↗ Oracle WebLogic Server — Oracle WebLogic Server Unspecified Vulnerability Oracle May 1, 2023
Critical CVE-2021-45046 ↗ Apache Log4j2 — Apache Log4j2 Deserialization of Untrusted Data Vulnerability Apache May 1, 2023

Source: official U.S. government open data. This is an organized index, not an official U.S. government site. "Explained" links to our summary page; otherwise links go to the official primary source.

Disclaimer: This site independently summarizes and classifies information based on official data sources. Always verify the latest and accurate information with the official sources. Content on finance, health, legal, and security is information, not advice. This site is not an official website of the U.S. government.